> TritonInfoSec News
Home / Apr 10, 2026 / Story
0
#7 BleepingComputer general April 09, 2026 at 16:15 UTC

Smart Slider updates hijacked to push malicious WordPress, Joomla versions

By Bill Toulas

AI Summary

Hackers compromised the update system for Smart Slider 3 Pro plugin for WordPress and Joomla, pushing malicious versions containing multiple backdoors to legitimate users expecting security updates. The supply chain attack demonstrates how threat actors can weaponize trusted software update mechanisms to distribute malware to thousands of websites.

Read full article → https://www.bleepingcomputer.com/news/security/sma…

Relevance score: 65.0/100

# More from April 10

  1. 1
    Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025 The Hacker News
  2. 2
    Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot BleepingComputer
  3. 3
    Iranian attacks on US critical infrastructure puts 3,900 devices in crosshairs CyberScoop
  4. 4
    Microsoft suspends dev accounts for high-profile open source projects BleepingComputer
  5. 5
    Google: New UNC6783 hackers steal corporate Zendesk support tickets BleepingComputer
  6. 6
    Eurail says December data breach impacts 300,000 individuals BleepingComputer
  7. 8
    'BlueHammer' Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues Dark Reading
  8. 9
    EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets The Hacker News
  9. 10
    Google Chrome adds infostealer protection against session cookie theft BleepingComputer